Multi-Device Licenses (Volume Discounts)

Change Region

English Português
Threat Database Potentially Unwanted Programs ElastiSearch Chrome Extension

ElastiSearch Chrome Extension

By GoldSparrow in Potentially Unwanted Programs
Translate To:
English

The ElastiSearch Chrome Extension is promoted via h[tt]ps://chrome.google[.]com/webstore/detail/elastisearch/ocgbinhlakkaaafibapioinkgmppgini as an instant search results generator that is powered by ElastiSearch.com. The ElastiSearch Chrome Extension can be installed into Google Chrome and other Web browsers based on the Chromium project like the SRWare Iron, Torch Browser, Yandex browser, Vivaldi, etc. The ElastiSearch Chrome Extension is known to require the following rights in the browser:

  • Read and change all your data on the websites you visit.
  • Replace the page you see when opening a new tab.
  • Change your search settings to: elastisearch.com.

You should note that the ElastiSearch Chrome Extension is designed to install a new search functionality from ElastiSearch.com in the Omnibox, force your browser to load h[tt]ps://elastisearch[.]com when you click the ‘Open New Tab’ button and start an online session. The Chrome Web Store page for ElastiSearch may say that the application is published by h[tt]p://elastitek[.]com but the site has no content and the Terms of Service (h[tt]p://elastisearch[.]com/?a=terms) and the Privacy Policy (h[tt]p://elastisearch[.]com/?a=privacy) seem generic. We found that ElastiSearch.com is hosted on the 104.24.117.159 IP address that is associated with a few computer support tactics like and malware deployment from h[tt]p://www.sr21[.]ru/xmlrpc. The ElastiSearch Chrome Extension is deemed as a Potentially Unwanted Program (PUP) that may produce pop-up windows and targeted advertisements from untrusted ad publishers. The search results facilitated by ElastiSearch.com may include links to corrupted pages, and the engine does not appear to support image and video searches. You may find that ElastiSearch.com can’t perform on the same level as Google, Yahoo, Bing and DuckDuckGo. The browser extension associated with ElastiSearch.com can be removed with the help of a credible anti-spyware scanner safely. AV engines may bring up notifications that show the following names when you load resources from the 104.24.117.159 IP address:

  • BehavesLike.HTML.Ramnit.cg
  • HTML/FakeAlert.itzb
  • HTML:Script-inf
  • JS/FakeAle-SG
  • SupportScam:JS/TechBrolo!rfn
  • Trojan.Fakealert
  • Trojan.Gen.NPE.2
  • Trojan.Html.Blocker.eizygn

Trending

Most Viewed

Loading...